Engineer Security
Not Disclosed•Full-TimeHybrid
location_onHybrid
About the Role
As a Security Engineer at JetBlue, you will be the guardian of our digital infrastructure, designing and deploying security solutions across all environments. Your mission is to ensure the integrity, confidentiality, and availability of our systems by identifying security gaps, validating controls, and driving projects from conception to completion. You will not only build and maintain robust security architectures but also foster a culture of safety and vigilance, acting as a Safety Ambassador to support our core values.
In this role, you will collaborate with cross-functional teams to strengthen application and web security, leveraging data-driven approaches to threat analysis. You will automate repetitive operations, engineer SIEM platforms, and secure cloud-native architectures, ensuring that our technology evolves alongside emerging threats. Your work will directly contribute to protecting our 20 million+ shoppers and maintaining the trust of our customers.
Crewmember Expectations
At JetBlue, we believe that safety is our #1 value. As a crewmember, you are expected to embody our core values: Safety, Caring, Integrity, Passion, and Fun. This includes maintaining regular attendance, being available for flexible hours or short-notice responses during critical situations, and promoting safety standards across the organization. You will also assist with light aircraft cleaning when traveling on JetBlue flights, time permitting, and report any safety or security concerns through our confidential systems.
Please note that the use of ChatGPT or any other automated tool during the interview process will disqualify a candidate from consideration. We value authentic human interaction and genuine problem-solving skills.
Work Environment
This position is based in a traditional office environment. While the role is primarily sedentary, it may require occasional overnight travel (10%) and the use of standard office equipment, including computers and mobile devices.
Equal Opportunity Employer
JetBlue is an Equal Opportunity Employer. We are committed to creating a diverse and inclusive environment where all employees are treated with respect and dignity. We consider qualified applicants regardless of race, color, religion, sex, national origin, age, disability, veteran status, or any other protected characteristic. Authorization to work in the US is required for this position; visa sponsorship is not available.
Work location
Work model: Hybrid
Hybrid
Key Responsibilities
- check_circleDesign, develop, and implement security solutions across all environments
- check_circleEngineer and administer SIEM platforms including data onboarding and log parsing
- check_circleAutomate security operations using scripting and orchestration tools
- check_circleDesign and secure containerized and cloud-native architectures
- check_circleConduct tests to validate security solutions and controls are effective
- check_circleCreate project plans, define milestones, and drive projects to completion
- check_circleRespond to escalations for service issues and critical security situations
- check_circleCollaborate with teams to strengthen application and web security controls
- check_circleApply data-driven approaches to threat analysis and remediation
- check_circle
Requirements
- verifiedBachelor's Degree in Computer Science, IT, Engineering, or related field OR High School Diploma/GED with 4+ years relevant experience
- verified3 years information security or relevant experience
- verifiedProficiency with identity and access management
- verifiedProficiency with Cloud technologies (Storage, Messaging Queues, Container Services, APIs, EventHubs, VMs)
- verifiedProficiency with Networking, ACLs, routers, firewalls, load balancers
- verifiedProficiency with security devices (IDS/IPS, WAF, DLP, encryption, endpoint security)
- verifiedProficiency with risk, security controls, compliance, authentication, authorization, accountability
- verifiedExtensive hands-on experience with Linux-based systems (RHEL, Ubuntu, Debian)
- verifiedStrong background in cloud platforms (Microsoft Azure, AWS, GCP)
Nice to Have
Security+ (or equivalent) certification. Knowledge of Information Security principles. Ability to work collaboratively during incidents involving potential attacks (e.g., scans, MITM, DoS/DDoS, malware). Experience in Security Automation Platforms such as Cortex XSOAR. Experience with container security and securing distributed microservice environments. Hands-on experience with SIEM tools, logging pipelines, and data analytics to support proactive threat hunting. Strong understanding of automation, orchestration, and infrastructure-as-code (Terraform, Ansible). Demonstrated expertise in web and application security, including WAFs, secure APIs, and OWASP Top 10 mitigation. Willingness and aptitude to develop in-depth knowledge of network and endpoint security technologies and continuously improve these skills. Strong communication skills to articulate technical processes to diverse audiences.
Benefits & Perks
check_circleAccess to healthcare benefitscheck_circle401(k) plan and company matchcheck_circleCrewmember stock purchase plancheck_circleShort-term and long-term disability coverageBasic life insurance
